ed95b1a888710f3ca4acacb49250fb6c21722e2882e31784bd2049d15f97d4de

Sharing

Copy URL

Twitter E-mail

General

Target

ed95b1a888710f3ca4acacb49250fb6c21722e2882e31784bd2049d15f97d4de
Size

698KB
MD5

bbb445901d3ec280951ac12132afd87c
SHA1

48146b81b85e41b67489f2c20a4e38cb10d1c778
SHA256

ed95b1a888710f3ca4acacb49250fb6c21722e2882e31784bd2049d15f97d4de
SHA512

5c7c7b02d57a6275149baa67ee3568a2f9fd0d086b3953da20ea552bf1d43845afc3dc6b082d7a0a2557b7560e344cba73d317e0f59c7aa91a55ea9953c69f65
SSDEEP

12288:PPgcwGZdeZ0wIo9e1dYiJQgajJRfswX5B:PYlEu0wIMNiugqEq

Score

N/A

Malware Config

Signatures

Files

ed95b1a888710f3ca4acacb49250fb6c21722e2882e31784bd2049d15f97d4de
.exe windows x86

38b3c1140f609711e334e9aa24fdf3ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
PrepareTape
DeleteCriticalSection
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetProcAddress
QueryPerformanceCounter
Sleep
LoadLibraryA
FindResourceA
GetVersionExA
GetTickCount
CreateProcessA
RemoveDirectoryA
FreeLibrary
CloseHandle
OpenProcess
LoadResource
VirtualProtect
GetVolumeInformationA
GetModuleHandleA
CreateFileA
GetSystemTime
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapReAlloc
HeapAlloc
DuplicateHandle
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RtlUnwind
RaiseException
GetCPInfo
LCMapStringA
LCMapStringW
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapSize
GetFileType
CreateFileW
SetStdHandle
SetHandleCount
GetStdHandle
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTimeFormatA
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
SetConsoleCtrlHandler
SetEndOfFile
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 422KB - Virtual size: 421KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38b3c1140f609711e334e9aa24fdf3ed

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 422KB - Virtual size: 421KB

.rdata Size: 170KB - Virtual size: 170KB

.data Size: 103KB - Virtual size: 131KB

.rsrc Size: 1024B - Virtual size: 888B

.text
Size: 422KB - Virtual size: 421KB

.rdata
Size: 170KB - Virtual size: 170KB

.data
Size: 103KB - Virtual size: 131KB

.rsrc
Size: 1024B - Virtual size: 888B